You are not logged in. Your edit will be placed in a queue until it is peer reviewed.
We welcome edits that make the post easier to understand and more valuable for readers. Because community members review edits, please try to make the post substantially better than how you found it, for example, by fixing grammar or adding additional resources and hyperlinks.
Required fields*
- 2Can you reverse it? I wasn't aware that MD5 was broken that heavily.waiwai933– waiwai9332010-01-12 03:37:54 +00:00Commented Jan 12, 2010 at 3:37
- waiwai933 - look up "rainbow tables" to see the full extent of the problem.zombat– zombat2010-01-12 03:44:42 +00:00Commented Jan 12, 2010 at 3:44
- 1Actually, that brings up an interesting point. Are gravatar ids just hashes of the emails? Do they even salt them?zombat– zombat2010-01-12 03:46:20 +00:00Commented Jan 12, 2010 at 3:46
- 3I upvote this, cause it would make it easier to prove that gravatars are a security risk.waffles– waffles Mod2010-01-12 03:58:01 +00:00Commented Jan 12, 2010 at 3:58
- So not actually reversing the encryption. I thought for a moment there, that the algorithm had been broken.waiwai933– waiwai9332010-01-12 04:04:40 +00:00Commented Jan 12, 2010 at 4:04
- 1There is a long discussion on SO about this. While you can't reverse them and rainbow tables won't help that much (after all, there are infinite input combinations for each hash), you can use them to guess e-Mails. Take the username or firstname and lastname and some well known mail provider addresses like gmail.com, hotmail.com etc. and then just try out many combinations. That works often. Not always of course, but it can easily get hundreds of valid addresses.Michael Stum– Michael Stum2010-01-12 04:15:42 +00:00Commented Jan 12, 2010 at 4:15
- 5This guy has had some success gleaning email addresses from Stack Overflow based on the Gravatar hash: developer.it/post/… (summary: 8597 addresses, or ~10% of those scraped). While I normally might be against including the email hash, I think the cat's sufficiently out of the bag that it might do more good than further harm.Kyle Cronin– Kyle Cronin Mod2010-01-12 05:04:18 +00:00Commented Jan 12, 2010 at 5:04
- 1@Michael Can you provide a link to that discussion?An̲̳̳drew– An̲̳̳drew2010-01-13 08:31:06 +00:00Commented Jan 13, 2010 at 8:31
Add a comment |
How to Edit
- Correct minor typos or mistakes
- Clarify meaning without changing it
- Add related resources or links
- Always respect the author’s intent
- Don’t use edits to reply to the author
How to Format
- create code fences with backticks ` or tildes ~ ```
like so
``` - add language identifier to highlight code ```python
def function(foo):
print(foo)
``` - put returns between paragraphs
- for linebreak add 2 spaces at end
- _italic_ or **bold**
- indent code by 4 spaces
- backtick escapes
`like _so_` - quote by placing > at start of line
- to make links (use https whenever possible) <https://example.com>[example](https://example.com)<a href="https://example.com">example</a>
How to Tag
A tag is a keyword or label that categorizes your question with other, similar questions. Choose one or more (up to 5) tags that will help answerers to find and interpret your question.
- complete the sentence: my question is about...
- use tags that describe things or concepts that are essential, not incidental to your question
- favor using existing popular tags
- read the descriptions that appear below the tag
If your question is primarily about a topic for which you can't find a tag:
- combine multiple words into single-words with hyphens (e.g. stack-overflow), up to a maximum of 35 characters
- creating new tags is a privilege; if you can't yet create a tag you need, then post this question without it, then ask the community to create it for you